Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39352e302f32342d3234203d3e20313334363233.roa
File: 3130332e3139372e39352e302f32342d3234203d3e20313334363233.roa (raw, json)
Hash identifier: rqdaT3dhU4vRh0lUQmFU0b1pAjqoq7sorljrl78YDwk=
Subject key identifier: C8:96:DA:FD:26:08:E5:D2:D1:13:FA:4F:27:09:14:63:B4:A2:30:9D
Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6
Certificate serial: 3BB937EC7A738890030F533B8153D5464932E938
Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39352e302f32342d3234203d3e20313334363233.roa
Signing time: Mon 01 Jul 2024 10:01:10 +0000
ROA not before: Mon 01 Jul 2024 09:56:10 +0000
ROA not after: Mon 30 Jun 2025 10:01:10 +0000
asID: 134623
IP address blocks: 103.197.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:b9:37:ec:7a:73:88:90:03:0f:53:3b:81:53:d5:46:49:32:e9:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2985976A4B3081770748882703E16497964D05A6
Validity
Not Before: Jul 1 09:56:10 2024 GMT
Not After : Jun 30 10:01:10 2025 GMT
Subject: CN=C896DAFD2608E5D2D113FA4F27091463B4A2309D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:45:f2:a0:86:7f:3d:5b:fb:80:0d:f1:fe:46:
67:f4:ce:05:67:1b:0f:d1:14:24:80:6a:52:86:d7:
71:83:34:c8:96:a0:13:0c:d2:4b:8f:3f:a7:68:bb:
68:54:f8:1e:96:74:aa:35:0c:d1:7a:4d:bf:e1:e1:
0c:bb:52:f1:ee:17:18:51:61:a1:63:66:25:44:bc:
35:96:01:e4:15:e7:4c:2a:1b:71:1a:5b:26:5d:70:
49:84:32:02:b6:8c:4e:54:fb:fa:79:dd:27:fc:57:
fd:a2:5f:3b:b4:cf:85:3e:3f:a4:70:15:66:dc:72:
c7:39:d6:8b:47:2b:8a:dd:7a:1a:d3:0f:4d:88:73:
6a:3d:b5:48:8b:99:c9:ea:6a:0c:db:44:31:1b:7e:
c2:ad:ef:d4:79:d3:17:a1:9a:e2:4c:a6:42:f2:02:
42:f8:55:73:3c:7d:e9:12:9b:44:69:b2:61:ca:35:
29:c1:3d:24:ed:d4:2e:7d:f7:b0:93:f2:b3:b1:4a:
4b:df:19:c7:4b:60:47:bb:e4:34:83:f1:00:19:84:
43:d2:18:b0:a8:7f:1e:75:55:91:03:dc:05:fb:83:
e3:82:43:9b:be:24:f7:94:3e:23:8e:e6:83:8a:fa:
78:71:da:42:9f:33:88:5e:e0:f7:ca:bc:6f:f9:fe:
b9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:96:DA:FD:26:08:E5:D2:D1:13:FA:4F:27:09:14:63:B4:A2:30:9D
X509v3 Authority Key Identifier:
keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/3130332e3139372e39352e302f32342d3234203d3e20313334363233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.197.95.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:f2:c4:3e:11:2f:d6:8d:fb:2c:f6:80:0e:b8:36:28:01:9e:
87:00:b5:98:e8:36:fc:23:47:80:76:c8:64:13:43:e8:6d:66:
6a:75:7b:03:c4:aa:1a:f8:21:f2:4a:9d:f9:46:a4:64:aa:d5:
e5:99:e3:48:f1:e7:35:01:c0:f7:a5:31:2f:f5:f6:db:7e:4a:
e8:40:7c:c4:e1:35:fa:08:c4:66:d5:ca:7b:0e:7a:f6:e0:d3:
1c:58:a1:f1:d5:0b:50:ef:a7:79:f6:f1:e8:96:a5:64:b3:22:
24:2f:d9:b3:b1:b7:c1:d9:7d:a4:0f:13:28:41:a1:5a:1f:ee:
87:9c:df:dc:19:d0:fb:1b:04:1c:56:c5:cf:fc:dd:df:83:de:
a8:58:54:a9:e5:a7:79:73:7c:35:ea:ca:24:6a:5f:c2:7d:65:
a2:b3:6e:49:52:29:23:a5:cd:95:dc:56:55:17:d2:a7:9f:de:
cc:ea:ed:e3:95:99:af:db:4e:be:79:fe:a1:f1:87:2b:55:f1:
1b:90:73:99:32:41:e7:56:ab:31:9a:4a:cd:13:d1:a4:3f:c4:
1d:dd:c3:64:93:31:e9:e9:1c:a8:db:b7:c9:72:28:fd:d7:21:
c1:b0:1f:b4:df:78:12:fd:88:48:9e:3b:91:01:5d:98:f9:0c:
37:36:28:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:06:42 2025 by rpki-client